• This is a political forum that is non-biased/non-partisan and treats every person's position on topics equally. This debate forum is not aligned to any political party. In today's politics, many ideas are split between and even within all the political parties. Often we find ourselves agreeing on one platform but some topics break our mold. We are here to discuss them in a civil political debate. If this is your first visit to our political forums, be sure to check out the RULES. Registering for debate politics is necessary before posting. Register today to participate - it's free!

No security ever built into Obamacare site: Hacker

American

American

Trump Grump Whisperer
DP Veteran
Monthly Donator
Joined
Mar 11, 2006
Messages
96,099
Reaction score
33,416
Location
SE Virginia
Gender
Male
Political Leaning
Conservative
No security ever built into Obamacare site: Hacker

It could take a year to secure the risk of "high exposures" of personal information on the federal Obamacare online exchange, a cybersecurity expert told CNBC on Monday.

"When you develop a website, you develop it with security in mind. And it doesn't appear to have happened this time," said David Kennedy, a so-called "white hat" hacker who tests online security by breaching websites. He testified on Capitol Hill about the flaws of HealthCare.gov last week.

"It's really hard to go back and fix the security around it because security wasn't built into it," said Kennedy, chief executive of TrustedSec. "We're talking multiple months to over a year to at least address some of the critical-to-high exposures on the website itself."

According to the Department of Health and Human Services, which oversaw the implementation of the website, the components used to build the site are compliant with standards set by Federal security authorities.

"The privacy and security of consumers' personal information are a top priority for us. Security testing happens on an ongoing basis using industry best practices to appropriately safeguard consumers' personal information," said the spokesperson.

Another online security expert—who spoke at last week's House hearing and then on CNBC—said the federal Obamacare website needs to be shut down and rebuilt from scratch. Morgan Wright, CEO of Crowd Sourced Investigations said: "There's not a plan to fix this that meets the sniff test of being reasonable."
Click to expand...
Even a layperson with reasonable knowledge of computers knows this.
 
In essence, one would be a fool to put personal info on that website. NICE!

This thing looks more and more like it was designed for failure from the get-go. It's just too far-fetch to conclude otherwise.
 
WCH said:
In essence, one would be a fool to put personal info on that website. NICE!

This thing looks more and more like it was designed for failure from the get-go. It's just too far-fetch to conclude otherwise.
Click to expand...

Nero did better than this.
 
apdst said:
It's time to cut our losses.
Click to expand...

Right, but I don't think we have a say in the thing, you know? The President has made up his mind. There's nothing we can do now.
 
Jango said:
Right, but I don't think we have a say in the thing, you know? The President has made up his mind. There's nothing we can do now.
Click to expand...

I agree with that, 100%
 
WCH said:
In essence, one would be a fool to put personal info on that website. NICE!

This thing looks more and more like it was designed for failure from the get-go. It's just too far-fetch to conclude otherwise.
Click to expand...

It reminds one of Solyndra, give political cronies public money/contracts and then claim surprise when they take the money and run.
 
Common sense is not so common when it comes to spendiing other people's money. ;)
 
Jango said:
Right, but I don't think we have a say in the thing, you know? The President has made up his mind. There's nothing we can do now.
Click to expand...

there is always the hope of armed rebellion
 
ttwtt78640 said:
It reminds one of Solyndra, give political cronies public money/contracts and then claim surprise when they take the money and run.
Click to expand...

This is turning out to be much more nefarious compared to Solyndra. That was just common money laundering to benefit a political party.
 
No security ?

Yes, obviously the Government is much better at doing this kind of thing.

"AMAZON''......( I heard ) has even WORSE security. It's pro-active anti-security, that actually contacts the hackers as soon as your credit is logged in...j/k.

But can you imagine ?
 
WCH said:
This is turning out to be much more nefarious compared to Solyndra. That was just common money laundering to benefit a political party.
Click to expand...

Whereas this "man caused disaster" only allows the PPACA employer mandate (95% of the "private" medical care insurance market) to be conveniently delayed until after the 2014 congressional elections, while still offering more (federally funded) Medicaid and subsidized insurance to the "poor".
 
ttwtt78640 said:
Whereas this "man caused disaster" only allows the PPACA employer mandate (95% of the "private" medical care insurance market) to be conveniently delayed until after the 2014 congressional elections, while still offering more (federally funded) Medicaid and subsidized insurance to the "poor".
Click to expand...

Da Base...

Most people who are needed to sign up and make this thing work are clueless.
 
The Chinese have probably logged in as administrators by now.
 
Honest question: Would you trust this government to run a lemonade stand?
 
This is unbelievable... I'm speechless. Security is supposed to be the foundation in which a website is built around, and it appears that wasn't how the Obamacare website was created.

No security ever built into Obamacare site: Hacker
Published: Monday, 25 Nov 2013 | 9:54 AM ET
By: Matthew J. Belvedere

It could take a year to secure the risk of "high exposures" of personal information on the federal Obamacare online exchange, a cybersecurity expert told CNBC on Monday.

"When you develop a website, you develop it with security in mind. And it doesn't appear to have happened this time," said David Kennedy, a so-called "white hat" hacker who tests online security by breaching websites. He testified on Capitol Hill about the flaws of HealthCare.gov last week.

"It's really hard to go back and fix the security around it because security wasn't built into it," said Kennedy, chief executive of TrustedSec. "We're talking multiple months to over a year to at least address some of the critical-to-high exposures on the website itself."
Click to expand...

No security ever built into Obamacare site: Hacker
 
I think this Healthcare.gov contract must have been awarded to cronies and in-laws instead of the most competent bidder.
 
Grim17 said:
This is unbelievable... I'm speechless. Security is supposed to be the foundation in which a website is built around, and it appears that wasn't how the Obamacare website was created.



No security ever built into Obamacare site: Hacker
Click to expand...

It should be no surprise at all that a group/company that had failed in prior system development efforts would stand a good chance of failing again. While past performance is not a guarantee of future success/failure, it is certainly a decent starting point and well worth looking into.
 
ttwtt78640 said:
It should be no surprise at all that a group/company that had failed in prior system development efforts would stand a good chance of failing again. While past performance is not a guarantee of future success/failure, it is certainly a decent starting point and well worth looking into.
Click to expand...

And our absolutely wonderful government contracting system basically never seems to take any of this into consideration. Contracting out to private business consistently fails to save money and also fails to improve quality. Design problems get amplified because our government also loves to change the requirements halfway through the process. We've just designed the fuselage for your new fighter, wait, now you want to increase the range by 30%? Welp, starting over.

The whole system is ****ed.

Of course, to steal from Stewart, saying obamacare is a bad law because the website doesn't work is like saying ice cream is bad because you can't find a spoon.
 
Deuce said:
And our absolutely wonderful government contracting system basically never seems to take any of this into consideration. Contracting out to private business consistently fails to save money and also fails to improve quality. Design problems get amplified because our government also loves to change the requirements halfway through the process. We've just designed the fuselage for your new fighter, wait, now you want to increase the range by 30%? Welp, starting over.

The whole system is ****ed.

Of course, to steal from Stewart, saying obamacare is a bad law because the website doesn't work is like saying ice cream is bad because you can't find a spoon.
Click to expand...

Slow down there skippy. The decision to contract out the PPACA website/system was either in the law or deemed to be better by HHS; in either case it was 100% under control of the demorats and made over three years ago. If you are contracting out the building of a house, you don't simply pay them 100% up front (or issue a time and materials contract), you inspect the work, as it progresses, and pay them only upon successful completion of each stage. John Stewart should certainly have expected Obama, et al, to have known the importance of having that spoon handy as opposed to just watching all of that ice cream melt. ;)
 
You must log in or register to reply here.
Back
Top Bottom